CVE-2020-2267

Missing Authorization in maven/io.jenkins.plugins/mongodb

Identifiers

CVE-2020-2267

Package Slug

maven/io.jenkins.plugins/mongodb

Vulnerability

Missing Authorization

Description

A missing permission check in Jenkins MongoDB Plugin allows attackers with Overall/Read permission to gain access to some metadata of any arbitrary files on the Jenkins controller.

Affected Versions

All versions up to 1.3

Solution

Unfortunately, there is no solution available yet.

Last Modified

2020-09-21

source